From mboxrd@z Thu Jan 1 00:00:00 1970 Path: news.gmane.org!.POSTED!not-for-mail From: phillip.lord@russet.org.uk (Phillip Lord) Newsgroups: gmane.emacs.devel Subject: Re: security-patches package Date: Thu, 21 Sep 2017 21:01:56 +0100 Message-ID: <877ewr253f.fsf@russet.org.uk> References: <87wp55t0un.fsf@petton.fr> <87tw07kikp.fsf@gnu.org> <161eff40ff05df7d5577e2456baa1676.squirrel@cloud103.planethippo.com> <87a81xhxh0.fsf_-_@lifelogs.com> <87tw02hcd1.fsf@lifelogs.com> NNTP-Posting-Host: blaine.gmane.org Mime-Version: 1.0 Content-Type: text/plain X-Trace: blaine.gmane.org 1506024202 20700 195.159.176.226 (21 Sep 2017 20:03:22 GMT) X-Complaints-To: usenet@blaine.gmane.org NNTP-Posting-Date: Thu, 21 Sep 2017 20:03:22 +0000 (UTC) User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/25.3.50 (gnu/linux) To: emacs-devel@gnu.org Original-X-From: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Thu Sep 21 22:03:18 2017 Return-path: Envelope-to: ged-emacs-devel@m.gmane.org Original-Received: from lists.gnu.org ([208.118.235.17]) by blaine.gmane.org with esmtp (Exim 4.84_2) (envelope-from ) id 1dv7gp-000519-NP for ged-emacs-devel@m.gmane.org; Thu, 21 Sep 2017 22:03:16 +0200 Original-Received: from localhost ([::1]:55323 helo=lists.gnu.org) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1dv7gw-0006IQ-Ts for ged-emacs-devel@m.gmane.org; Thu, 21 Sep 2017 16:03:22 -0400 Original-Received: from eggs.gnu.org ([2001:4830:134:3::10]:36226) by lists.gnu.org with esmtp (Exim 4.71) (envelope-from ) id 1dv7gI-0006Hw-RB for emacs-devel@gnu.org; Thu, 21 Sep 2017 16:02:43 -0400 Original-Received: from Debian-exim by eggs.gnu.org with spam-scanned (Exim 4.71) (envelope-from ) id 1dv7gF-0002pQ-P4 for emacs-devel@gnu.org; Thu, 21 Sep 2017 16:02:42 -0400 Original-Received: from cloud103.planethippo.com ([78.129.138.110]:58546) by eggs.gnu.org with esmtps (TLS1.0:DHE_RSA_AES_256_CBC_SHA1:32) (Exim 4.71) (envelope-from ) id 1dv7gF-0002Yy-Ge for emacs-devel@gnu.org; Thu, 21 Sep 2017 16:02:39 -0400 DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed; d=russet.org.uk; s=default; h=Content-Type:MIME-Version:Message-ID: In-Reply-To:Date:References:Subject:To:From:Sender:Reply-To:Cc: Content-Transfer-Encoding:Content-ID:Content-Description:Resent-Date: Resent-From:Resent-Sender:Resent-To:Resent-Cc:Resent-Message-ID:List-Id: List-Help:List-Unsubscribe:List-Subscribe:List-Post:List-Owner:List-Archive; bh=y/u6NjbB1H6QQ3iF/+ifK8BVo8uO56lB+iLiL3j//oQ=; b=FUCoVFEIC8c6FJ37fKWfb4z8a 2+JZ2idxUwAeYlxuKMysfxNm4hmKHUogUT9ZJ4N9PyyITuy/qfJLnUA4HPJw0cC9oaHaUbcEIcFPm zce1CakOXo2HdI3oBWCaQoD+tGE2oGs6/aP7h1dilhvXiMQ5/TFrmb1Lk8BqwvHSn1eoVfFgMGpGY WfKFik2fGdk5qY7lDT+aOBJOSPBJYXIAe4svRG8moDgfdlsbN6ynjcMVR3zvtCHqAELRM8X5GuTdP WdVVORqkASwhO9nj72IMBK+k7rpWRrfFe2qd9HqUTtoWMCDZj/HN3M9n+l8IoiqJgP+4ht0Dyhz8Y UQC/z7ldQ==; Original-Received: from cpc8-benw10-2-0-cust100.16-2.cable.virginm.net ([92.233.204.101]:45738 helo=russet.org.uk) by cloud103.planethippo.com with esmtpsa (TLSv1.2:ECDHE-RSA-AES128-GCM-SHA256:128) (Exim 4.89) (envelope-from ) id 1dv7fZ-00139V-CM for emacs-devel@gnu.org; Thu, 21 Sep 2017 20:01:57 +0000 In-Reply-To: <87tw02hcd1.fsf@lifelogs.com> (Ted Zlatanov's message of "Sat, 16 Sep 2017 11:50:02 -0400") X-AntiAbuse: This header was added to track abuse, please include it with any abuse report X-AntiAbuse: Primary Hostname - cloud103.planethippo.com X-AntiAbuse: Original Domain - gnu.org X-AntiAbuse: Originator/Caller UID/GID - [47 12] / [47 12] X-AntiAbuse: Sender Address Domain - russet.org.uk X-Get-Message-Sender-Via: cloud103.planethippo.com: authenticated_id: phillip.lord@russet.org.uk X-Authenticated-Sender: cloud103.planethippo.com: phillip.lord@russet.org.uk X-Source: X-Source-Args: X-Source-Dir: X-detected-operating-system: by eggs.gnu.org: GNU/Linux 3.x [fuzzy] X-Received-From: 78.129.138.110 X-BeenThere: emacs-devel@gnu.org X-Mailman-Version: 2.1.21 Precedence: list List-Id: "Emacs development discussions." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Errors-To: emacs-devel-bounces+ged-emacs-devel=m.gmane.org@gnu.org Original-Sender: "Emacs-devel" Xref: news.gmane.org gmane.emacs.devel:218653 Archived-At: Ted Zlatanov writes: > On Fri, 15 Sep 2017 08:32:16 -0400 Stefan Monnier wrote: > > SM> having a "security-patches" package might make sense. >>> I would love to see that as well, especially if it was well tested in a >>> CI system against various versions of Emacs. >>> What needs to happen so the experience is seamless? > > SM> Step one is to create this package in elpa.git, putting the fix for the > SM> enriched.el bug. > > A package is pretty easy but I have a few questions before putting that > out: > > * how do we prevent accidental or malicious commits to this package? > Could it maybe live in a special "GNU ELPA security updates" archive > separate from elpa.git? I think this is not important. It wouldn't have any special privilege; i.e. the malicious user could do the same nasty things in any package. Accidental commits could just be controlled by constraining the *release* -- that is commits would be normal, but they wouldn't go live. > * should it be signed+released in a special way? How do we test it? Testing is hard, unless we produce a "alpha" version of ELPA (try saying that when drunk). > * what version of Emacs will begin to check for this package? Emacs 26, more or less by definition. > * Can we do push notifications somehow or are we limited to polling? Polling. Worse polling at the users request, because ELPA doesn't also update. Changing ELPA to auto-update the archive would be a good thing to do, I think. > * should there be a special mailing list for internal discussions? > > * how do we make the experience seamless (on startup, during a > long-running session, unattended, for a whole site)? > > In a related vein, I mentioned a while ago that it would be really nice > to see the changes (from what's installed) to all the code in a package > before upgrading it. I think for security updates that would be > especially useful. That would be cute, for non-security also. Give people a reason to update. Phil